PSIRT Advisories

The following is a list of advisories for issues resolved in Fortinet products. The resolution of such issues is coordinated by the Fortinet Product Security Incident Response Team (PSIRT), a dedicated, global team that manages the receipt, investigation, and public reporting of information about security vulnerabilities and issues related to Fortinet products and services.

For details of how to raise a PSIRT Issue with Fortinet, please see our PSIRT Policy here.

FortiWeb multiple vulnerabilities

Older versions of FortiWeb are subject to three vulnerabilities: 1. OS command injection: A WebUI administrator user may run...

Apr 16, 2015 Risk

IR Number: FG-IR-15-010

Multiple Vulnerabilities in FortiManager

Certain versions of FortiManager are subject to the following vulnerabilities: 1. Escalation of Privileges: under certain circumstances,...

Apr 16, 2015 Risk

IR Number: FG-IR-15-011

Http debug commands in FortiMail exposes users credentials to admins

FortiMail's "diag debug application httpd" set of commands can be used to capture the credentials entered in the admin WebGui...

Apr 10, 2015 Risk

IR Number: FG-IR-15-009

Refine RESET

PSIRT Advisories

Refine
RESET